Role-based access control in Secure Private Access
Role-based access control (RBAC) is an approach to identity and access management (IAM) where the user is given access to a resource according to their role at the organization. RBAC enables permissions on a need-to-use basis, ensuring users only have access to what is needed to complete their tasks.
Role-based access control in the Secure Private Access service allows security admin teams to provide granular controls such as read-only access to administrators. Administrators who do not add or modify an app can be provided with read-only access to view the app details. Secure Private Access service admins with read-only access cannot perform the following tasks. Secure Private Access service admins with read-only access cannot perform the following tasks:
- Add or edit enterprise Web or SaaS apps.
- Add new Connector Appliances in existing or new resource locations.
How to provide read only access to admins
- After signing in to Citrix Cloud, select Identity and Access Management from the menu.
- On the Identity and Access Management page, click Add administrator/group. The console displays all the current administrators in the account.
- In Add an administrator or group, select the identity provider from which you want to select the administrator. Sometimes, Citrix Cloud might prompt you to sign in to the identity provider first (for example, Azure Active Directory).
- If Citrix Identity is selected, enter the user’s email address and then click Next.
- Select Custom access and then select Secure Private Access.
- Select the role Read Only Administrator.
- Click Send invitation.
- Click Send Invite.
To view the app details when admins have read only access
- After signing in to Citrix Cloud, select Library from the menu.
-
Select the app that you want to view the details and click the ellipsis. Only the View option is enabled. All other options are disabled.
-
Click View.
